mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-12-09 05:51:54 +08:00
Code Issues Packages Projects Releases Wiki Activity
b0031e5dc2
openssl/ssl
History
Kurt Roeckx b0031e5dc2 Check that the default signature type is allowed 
TLS < 1.2 has fixed signature algorithms: MD5+SHA1 for RSA and SHA1 for the
others. TLS 1.2 sends a list of supported ciphers, but allows not sending
it in which case SHA1 is used. TLS 1.3 makes sending the list mandatory.

When we didn't receive a list from the client, we always used the
defaults without checking that they are allowed by the configuration.

Reviewed-by: Paul Dale <paul.dale@oracle.com>
GH: #10784
2020-01-25 14:10:40 +01:00
..
record Make sure we use RAND_bytes_ex and RAND_priv_bytes_ex in libssl 2020-01-24 15:12:56 +00:00
statem Make sure we use RAND_bytes_ex and RAND_priv_bytes_ex in libssl 2020-01-24 15:12:56 +00:00
bio_ssl.c Reorganize local header files 2019-09-28 20:26:35 +02:00
build.info
d1_lib.c Reorganize local header files 2019-09-28 20:26:35 +02:00
d1_msg.c Reorganize local header files 2019-09-28 20:26:35 +02:00
d1_srtp.c Reorganize local header files 2019-09-28 20:26:35 +02:00
methods.c Update some inclusions of <openssl/macros.h> 2019-11-07 11:37:25 +01:00
pqueue.c Reorganize local header files 2019-09-28 20:26:35 +02:00
s3_cbc.c Deprecate the low level MD5 functions. 2020-01-19 10:14:39 +10:00
s3_enc.c Stop using EVP_MD_CTX_FLAG_NON_FIPS_ALLOW 2019-10-11 09:52:31 +02:00
s3_lib.c Make sure we use RAND_bytes_ex and RAND_priv_bytes_ex in libssl 2020-01-24 15:12:56 +00:00
s3_msg.c Reorganize local header files 2019-09-28 20:26:35 +02:00
ssl_asn1.c Explicitly test against NULL; do not use !p or similar 2019-10-09 21:32:15 +02:00
ssl_cert_table.h
ssl_cert.c SSL: Document SSL_add_{file,dir,store}_cert_subjects_to_stack() 2019-11-12 13:38:36 +01:00
ssl_ciph.c Deprecate most of debug-memory 2019-12-14 20:57:35 +01:00
ssl_conf.c X509_LOOKUP_store: new X509_LOOKUP_METHOD that works by OSSL_STORE URI 2019-11-03 18:38:23 +01:00
ssl_err.c util/mkerr.pl: make it not depend on the function code 2019-09-12 17:59:52 +02:00
ssl_init.c Reorganize local header files 2019-09-28 20:26:35 +02:00
ssl_lib.c Make sure we use RAND_bytes_ex and RAND_priv_bytes_ex in libssl 2020-01-24 15:12:56 +00:00
ssl_local.h Check that the default signature type is allowed 2020-01-25 14:10:40 +01:00
ssl_mcnf.c Reorganize local header files 2019-09-28 20:26:35 +02:00
ssl_rsa.c commit a6efbe123af3d98b4d10d4fcdfe68dc5303212f8 2019-11-16 08:29:26 +10:00
ssl_sess.c Make sure we use RAND_bytes_ex and RAND_priv_bytes_ex in libssl 2020-01-24 15:12:56 +00:00
ssl_stat.c Reorganize local header files 2019-09-28 20:26:35 +02:00
ssl_txt.c Reorganize local header files 2019-09-28 20:26:35 +02:00
ssl_utst.c Reorganize local header files 2019-09-28 20:26:35 +02:00
t1_enc.c Fix some typos 2019-12-11 19:04:01 +01:00
t1_lib.c Check that the default signature type is allowed 2020-01-25 14:10:40 +01:00
t1_trce.c Process GOST ClientKeyExchange message in SSL_trace 2019-11-23 16:27:30 +03:00
tls13_enc.c Update tls13_enc.c 2020-01-02 13:49:41 +01:00
tls_srp.c Replace BUF_ string function calls with OPENSSL_ ones 2019-10-17 23:19:59 +02:00